Rank #1: 3: Managing Secrets with Vault, with Seth Vargo
This 3rd episode of SysCast revolves around secrets: managing API keys, passwords, tokens, … with Hashicorp’s Vault.
I’m joined by Seth Vargo from Hashicorp who explains how Vault works, its internals, different use cases, key management & rollover and lots of interesting details about Vault itself.
If you’re storing your passwords inside your git repository or managing them by hand in yaml/ini files, listen to this episode to learn how Vault can help store credentials more securely and automate secret management for you.
Once again, if you have a minute or 2, leave a rating on iTunes.
- @sethvargo on Twitter
- VaultProject.io the official website
- The interactive demo of Vault
- Consul Template
- Using HashiCorp’s Vault with Chef (applicable to Puppet/Ansible, too)
May 31 2016
Rank #2: 7: Config Management Camp: Kubernetes, Sysdig & Mgmt
I’m back! Sort of.
This is a mono-episode where it’s just me talking about Config Management Camp, a conference held in Gent in February 2017. I recap a few interesting talks and projects I saw.
This is an episode that I recorded in the car. So there might be audio quality concerns and I’m very much looking for feedback on this format: is it hearable? Does it bother you? Should I do more of these recaps?
Feb 09 2017
Rank #3: 6.5: SysCast is taking a little break
I wish I didn’t have to bring this message, but I’m fairly certain you already noticed it: there hasn’t been a new SysCast podcast in a while.
I’m taking a bit of a break to organise things, prepare better and overall bring a better show. But that takes time, and time is something I don’t have at the moment.
The plan is to bring SysCast back in a few months. In the meantime, don’t unsubscribe just yet, keep the RSS feed going. In a few months, I hope to be back – full force.
Meanwhile, if you’re craving more open source or linux news, have a look at the weekly newsletter called cron.weekly!
Oct 23 2016
Rank #4: 6: Application Security & Cryptography with Scott Arciszewski
For the 6th episode of SysCast I’m joined by Scott Arciszewski.
We talk about PHP, cryptography, securing online applications, cache timing attacks, his CMS called Airship and so much more.
If you like security and crypto, you’ll like this episode!
- Scott is @CiPHPerCoder on Twitter as well as @ParagonIE
- Scott works at Paragon Initiative Enterprises
- CMS Airship
- Secure Coding Rules
- OWASP Top 10
- You Wouldn’t Base64 a Password – Cryptography Decoded
- The Cryptopals Crypto Challenges
- Timing Attacks
- htshells (Self contained htaccess shells and attacks)
- SysCast episode on the Caddy Webserver (episode #1)
- libsodium (A modern and easy-to-use crypto library)
- All the crypto code you’ve ever written is probably broken
- “This JPEG is also a webpage” (view source of this site!)
Aug 26 2016
Rank #5: 5: Ansible: config management & deploying code with James Cammarata from Red Hat
In this episode I talk to James Cammarata, head of Ansible core engineering to discuss the Ansible project.
We discuss how it’s used as a config management tool in both a push/pull scenario, how Ansible can be used as a deployment tool and an orchestrator. We touch on the terminology, Red Hat’s acquisition, ideal use cases, how to get started with Ansible, Ansible vs. Puppet and so much more.
If I can borrow 2 minutes of your time, leave a rating on iTunes please!
- You can find James as @thejimic on Twitter
- Ansible mailing lists: ansible-project (general) and ansible-devel (for, you know, devs)
- Ansible IRC channels
- Official Ansible website: Ansible.com
- Red Hat acquires Ansible: press release
- Ansible Playbooks
- YAML syntax
- Getting started with Ansible: 30 minute introduction video
- Development Modules in Ansible
- How to deploy an application with Ansible
- Ansible 2.0 release
- The Cobbler project
- cron.weekly newsletter
A special thanks for Serge van Ginderachter (@svg on Twitter) for helping prepare this show.
Aug 04 2016